Scribd Logo
Upload

Welcome to Scribd!

  • Exploitx

    Uploaded by

    LoKi
    13 views2 pages
    Exploit for mobile

    Original Title

    exploitx

    Copyright

    © © All Rights Reserved

    Available Formats

    TXT, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    Exploit for mobile

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    13 views2 pages

    Exploitx

    Uploaded by

    LoKi
    Exploit for mobile

    Copyright:

    © All Rights Reserved
    Download as TXT, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 2

    by Kilo " H4cK3r . Shadow Crew founder also of IRC"s #CCpower .

    To remain in the
    game as long as I have is a pure omniscient fact that even though we are doing the
    things your not suppose to ddoesn't mean you have NO value. the Value of something
    is what codes are about. Find its Value, you will discover that not only do you
    find a vulnerability possibly but you find a strength hidden under the surface.
    Value of 0x00 is an eminence Value but alone has no value at all.. discover your
    value and you will discover that under the HAT is what your value is.. Not the
    color.

    http://www.php-s.ru/authorization/MicroLoginSystem/demo/login.php

    BACK WITH SOMETHING NEW


    Sensitive Information Disclosure(OWASP Top 10)

    WTF is that thing ?


    So, its a type of vulnerability in websites, the name says itself. The Website
    unknowingly displays some sensitive data which should not have been shown
    publicly.Which then can be used in OSINST

    Example: http://prntscr.com/qqd5oj(Server the site is hosted on, php version it is


    using, port and someshit)

    Some wordpress earlier versions used to disclose the wp-admin user:pass in the
    source code itself.

    Common stack traces in websites also disclose informations beating down to the
    original source code of the program

    Got 5 such Admin Logins where i just had to look for some publicly available
    sources to get the user:pass

    http://www.cvsnwk.org/cvsm/login.php
    username: Admina
    Password:cvsnwk

    http://tski.com.ph/secure/employsect/login.php
    Username : Admin
    Password : tskicom

    http://www.paisley-cat.com/student/login.php
    Username : Admin1
    Password : paisley

    http://www.php-s.ru/authorization/MicroLoginSystem/demo/login.php
    Username : Admin1
    Password : ag7ag7

    http://fcm-bikers.co.uk/Micro/login.php
    Username : Admin
    Password:ag7ag7

    A Thanks @Shant_bot would do if you like it

    $2$XRnrPofkud3ITc8o2llI3A0tcRw

    carrierdefaultapp/-$
    $Lambda$CaptivePortalLoginActivity$2$z59xO_HVhPYn9DUFKQrOYhObu4s;
    .super Ljava/lang/Object;
    .class public final synthetic Landroid/net/apf/-$
    $Lambda$ApfFilter$UV1wDVoVlbcxpr8zevj_aMFtUGw;

    You might also like